Well, hardened profile really did add some peace of mind to me, very rarely
I found some app to be terminated thanks to stack smashing protection. I
would like to have safe working environment, but the incompatibility cost
me quite some time. Hardened would be the only choice for me if it was a
server solution, but for notebook workstation with KDE it is quite
inconvenient. ATI fglrx drivers have problems on hardened kernel (even with
GrSec and PAX disabled, just thanks to other hardened patches), VirtualBox
cannot be compiled using hardened gcc profile, when trying to emerge
wxMaxima some of its dependencies refuse to be compiled on hardened profile
(was it gnuplot? I am really not sure)... These are usually small amounts
of time which I have to invest, but there is quite a bunch of them. On
server I have no such problems and I am using hardened profile with lots of
security features turned on without problems, but on desktop workstation it
is quite a pain.
Anyway I have already creates a partition and in some free time I have been
installing Gentoo with default profile via chroot. When I have complete
environment and all my data moved, I'll try to convert the profile, just
out of curiosity...
Peter
